​Wealth of lacunae: On the Kudankulam nuclear plant data leak | Current Affairs | Vision IAS

Upgrade to Premium Today

Start Now
MENU
Home
Quick Links

High-quality MCQs and Mains Answer Writing to sharpen skills and reinforce learning every day.

Watch explainer and thematic concept-building videos under initiatives like Deep Dive, Master Classes, etc., on important UPSC topics.

A short, intensive, and exam-focused programme, insights from the Economic Survey, Union Budget, and UPSC current affairs.

ESC

Daily News Summary

Get concise and efficient summaries of key articles from prominent newspapers. Our daily news digest ensures quick reading and easy understanding, helping you stay informed about important events and developments without spending hours going through full articles. Perfect for focused and timely updates.

News Summary

Sun Mon Tue Wed Thu Fri Sat

​Wealth of lacunae: On the Kudankulam nuclear plant data leak

17 Jul 2026
2 min

Ransomware Attack on Kudankulam Nuclear Project

A recent ransomware attack targeted a contractor involved in the Kudankulam nuclear power project, raising significant concerns. Although the plant's integrity remains intact, this incident highlights vulnerabilities in India's cybersecurity framework.

Background and Previous Incidents

  • In 2019, malware was detected on the administrative network of the Kudankulam facility, though the operational reactor network was reportedly unaffected.
  • The latest incident follows a similar pattern, underscoring persistent cybersecurity challenges.

Issues with Breach Disclosure

  • India's breach disclosure regime is often inconsistent and opaque.
  • Affected organizations fear that admitting breaches could damage public confidence, affect share prices, and invite regulatory scrutiny.
  • Many lack mature incident response capabilities, treating cybersecurity more as a compliance issue than a necessity.

Details of the Current Attack

  • The ransomware attack was executed by a group called ‘World Leaks’ targeting systems of Reliance Infrastructure, a contractor for Units 3 and 4.
  • Data was hosted by Yotta Data Services, which detected suspicious activity on May 29, with data appearing on World Leaks by June 11.
  • NPCIL issued a formal clarification only by July 15, after media reports.
  • Approximately 14.3 GB of files were released, including sensitive infrastructure layouts and vendor lists.

Impact and Response

  • India ranks as the third-most breached country, with prior incidents affecting AIIMS Delhi, airlines, and State government portals.
  • Kudankulam is central to India's nuclear ambitions, necessitating robust cybersecurity measures.

Recommendations and Conclusion

  • Entities like CERT-In and NPCIL should clarify the authenticity of the released files and assess if data was exfiltrated.
  • Focus on improving cyber-hygiene and ensuring proactive communication to mitigate future risks.

Explore Related Content

Discover more articles, videos, and terms related to this topic

RELATED TERMS

3

Cyber-hygiene

Refers to the practices and routines individuals and organizations adopt to maintain the security and integrity of their digital assets, similar to personal hygiene for health. It's about proactive security measures.

NPCIL

Nuclear Power Corporation of India Limited. A public sector undertaking under the DAE, responsible for the design, construction, operation, and maintenance of nuclear power plants in India.

CERT-In

Indian Computer Emergency Response Team is the national agency responsible for responding to computer security incidents and for promoting cyber security practices.

Title is required. Maximum 500 characters.

Search Notes

Filter Notes

Loading your notes...
Searching your notes...
Loading more notes...
You've reached the end of your notes

No notes yet

Create your first note to get started.

No notes found

Try adjusting your search criteria or clear the search.

Saving...
Saved

Please select a subject.

Referenced Articles

linked

No references added yet